$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: PUbUmxC9ITcI1B+oZznezUzqquMMrN5niHpMt5iFz+o= Subject key identifier: D9:EB:E0:CF:2E:A9:B7:31:09:BD:76:26:E7:60:09:90:DE:D5:F6:BD Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3597 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3532 Signing time: Sun 02 Nov 2025 14:53:01 +0000 Manifest this update: Sun 02 Nov 2025 14:53:01 +0000 Manifest next update: Sun 09 Nov 2025 14:53:01 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: ipFFtQXidEWXraggagZk2nP4nGL5bOjiuE2QN171o1c=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13719 (0x3597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Nov 2 14:53:01 2025 GMT Not After : Nov 9 14:53:01 2025 GMT Subject: CN=6907704d-64a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:fb:18:e8:0f:76:ff:b1:a4:6b:01:d9:cf: 56:b5:0a:27:4c:77:34:ec:a2:46:79:c1:f0:01:3d: f8:0d:a1:8f:8a:45:ff:d2:e7:6d:a1:a9:d3:c3:9a: ef:56:03:ee:80:e4:95:f9:01:e1:3b:50:da:34:0a: 54:2b:c9:74:ed:7a:55:cb:0d:ed:b7:5e:10:c2:af: 69:d8:d2:91:e7:5b:43:b6:25:75:18:ab:2b:04:65: 14:2b:6d:d8:4d:f8:fa:00:b4:dc:b5:a9:5c:a5:a1: 10:f3:a9:fa:0f:8c:3e:c8:ef:f6:28:26:64:0a:d5: 01:16:2d:bc:a4:7b:50:b8:83:90:ee:6b:4f:ec:e2: 34:1a:a3:a2:1d:ca:ef:da:b5:30:79:63:c0:08:4c: 7f:cb:aa:64:15:fc:1e:ed:9f:48:49:70:33:bb:94: 6d:02:98:d0:e3:3e:bc:99:c1:f7:99:f9:80:b5:3b: 24:ff:7b:84:c2:b5:e6:56:7e:76:83:84:d7:7f:59: 27:69:6a:c3:81:2c:47:2a:6c:27:0d:19:54:ee:3e: 77:61:59:c8:27:f3:17:1c:cc:a8:a6:74:1f:7e:89: b4:c1:48:00:e0:86:ac:c1:87:c0:05:fb:09:99:25: 69:3b:26:73:b2:6a:5e:e9:19:0c:f4:94:47:dd:ca: 07:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EB:E0:CF:2E:A9:B7:31:09:BD:76:26:E7:60:09:90:DE:D5:F6:BD X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:73:ff:6a:ea:4b:9b:d6:88:2b:7d:99:57:29:de:8b:38:06: fc:63:f8:a6:7d:46:c5:44:18:7e:71:2c:88:47:40:2f:f1:72: 97:16:8c:ac:a6:c5:1c:9d:be:18:ad:1c:1a:48:0d:79:25:6f: 2d:a2:5b:9d:b9:65:77:8e:a3:42:5f:41:32:2e:a9:b1:bb:99: c6:36:a6:7f:e5:25:70:e2:09:09:6d:88:54:02:17:a1:ec:7f: 03:a9:93:81:8c:ec:7d:7d:aa:cd:59:ec:60:5b:66:74:2e:42: c6:13:d2:97:52:e0:0d:46:95:be:6e:2d:48:19:41:e2:8a:9c: 3f:e1:ab:20:95:7c:19:44:65:89:4c:5d:ed:5d:d8:e6:47:60: 90:e4:ea:9f:f2:61:7b:7f:c2:7b:8c:81:81:e9:57:d4:85:f1: 0f:ad:9b:cb:b3:81:01:5d:1a:10:61:41:15:d0:14:f7:87:93: 0f:24:48:6b:c6:b8:31:c0:23:71:e5:75:44:32:80:39:52:20: 6e:43:94:77:67:12:7a:e0:44:12:ea:62:91:ac:f2:fb:9c:c6: 25:ac:e0:46:c1:38:86:26:af:e8:6f:25:07:4c:79:6d:c5:0d: 81:df:41:e9:b0:29:bb:05:22:7d:5c:34:da:83:ec:15:ac:a7: de:0c:ab:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUxMTAyMTQ1MzAxWhcNMjUxMTA5MTQ1MzAxWjAYMRYwFAYD VQQDEw02OTA3NzA0ZC02NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgT7GOgPdv+xpGsB2c9WtQonTHc07KJGecHwAT34DaGPikX/0udtoanTw5rv VgPugOSV+QHhO1DaNApUK8l07XpVyw3tt14Qwq9p2NKR51tDtiV1GKsrBGUUK23Y Tfj6ALTctalcpaEQ86n6D4w+yO/2KCZkCtUBFi28pHtQuIOQ7mtP7OI0GqOiHcrv 2rUweWPACEx/y6pkFfwe7Z9ISXAzu5RtApjQ4z68mcH3mfmAtTsk/3uEwrXmVn52 g4TXf1knaWrDgSxHKmwnDRlU7j53YVnIJ/MXHMyopnQffom0wUgA4IaswYfABfsJ mSVpOyZzsmpe6RkM9JRH3coHHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnr4M8u qbcxCb12JudgCZDe1fa9MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLc/9q6kub1ogrfZlXKd6LOAb8Y/imfUbFRBh+cSyIR0Av8XKXFoys psUcnb4YrRwaSA15JW8toluduWV3jqNCX0EyLqmxu5nGNqZ/5SVw4gkJbYhUAheh 7H8DqZOBjOx9farNWexgW2Z0LkLGE9KXUuANRpW+bi1IGUHiipw/4asglXwZRGWJ TF3tXdjmR2CQ5Oqf8mF7f8J7jIGB6VfUhfEPrZvLs4EBXRoQYUEV0BT3h5MPJEhr xrgxwCNx5XVEMoA5UiBuQ5R3ZxJ64EQS6mKRrPL7nMYlrOBGwTiGJq/obyUHTHlt xQ2B30HpsCm7BSJ9XDTag+wVrKfeDKuv -----END CERTIFICATE-----Generated at Mon Nov 3 10:19:51 2025 by rpki-client